View Enisa Req

Requirement Nr : GP-TM-26
Description : Ensure password recovery or reset mechanism is robust and does not supply an attacker with information indicating a valid account. The same applies to key update and recovery mechanisms.
Good Practice : Authentication
Is Fullfilled By :
Remarks :
Source : Baseline Security Recommendations for IoT in the context of Critical Information Infrastructures November 2017
Licence : Copyright Notice © European Union Agency for Network and Information Security (ENISA), 2017 Reproduction is authorised provided the source is acknowledged
Edit